Box’s device pinning feature enables you to establish a policy for the maximum number of devices that can access Box’s service from a phone, tablet (iOS, Android, and Windows Phone) or desktop (Mac and Windows). To enable device pinning, navigate to Admin Console > Enterprise Settings > Device Trust tab.
This feature is available to Business Plus and Enterprise accounts.
Determining a Policy for Device Pinning
Additionally, even if the policy is unlimited for each device type, device pinning gives you visibility into all connected devices throughout the organization and the ability to easily remove them when necessary. An admin can optionally be notified each time a new device is connected. If the policy is for a limited number of connected devices, admins can optionally exempt specific users from the policy.
Rolling Out Device Pinning and Sync
When someone asks to have sync on their corporate device, they can notify the IT team. At that point the person can bring their corporate laptop to the IT team to verify Box Sync is pinned to the correct, corporate device. To do this, navigate to Admin Console > Users & Groups > Managed Users tab, find the person who wants to enable sync, and in the Edit User Access permissions section check Enable Box Sync, and then click Save.
What If the Device is Lost or Stolen?
- In the Application Usage section search for the individual by email or username.
- Click the All Application Types down arrow, and from the list that displays click the device reported lost.
- Next to each lost device, check the box. Be sure to remove all connected devices that match the device that was reported lost -- for example, remove all connected iPads even if only one iPad was reported lost.